‘Cordyceps’ Malicious Pull Requests Threaten CI/CD Pipelines Across Major Cloud and Open‑Source Projects
What Happened — Researchers identified a new supply‑chain threat dubbed “Cordyceps” that injects malicious code via seemingly legitimate pull requests (PRs). The technique has been observed targeting Microsoft Azure Sentinel, Google AI Agent Development Kit, Apache Doris, Cloudflare Workers SDK, and the Python Software Foundation’s Black library. Successful PR merges can silently embed back‑doors or data‑exfiltration logic into downstream builds.
Why It Matters for Compliance & Audit Readiness
- SOC 2 vendor‑management controls (CC6.1) require continuous monitoring of third‑party code contributions; Cordyceps shows how unchecked PRs can become a compliance breach.
- Maintaining a defensible audit trail of PR approvals, signature verification, and automated policy enforcement provides the evidence auditors expect for a robust supply‑chain risk program.
- Continuous‑compliance platforms that surface anomalous PR activity help demonstrate due‑diligence and mitigate the risk of unauthorized code reaching production.
Who Is Affected – Cloud‑infrastructure providers, SaaS platforms, open‑source maintainers, and any organization that integrates third‑party libraries through automated CI/CD pipelines.
Recommended Actions –
- Enforce signed commits and mandatory reviewer approvals for all external contributions.
- Integrate automated static‑analysis and provenance checks into CI pipelines to flag unexpected code patterns.
- Map these controls to SOC 2 CC6.1 (Vendor Management) and retain logs as audit evidence.
Source: Dark Reading
Technical Notes – The attack leverages the trust model of open‑source contribution workflows; no public CVE is associated, but the vector is “malicious pull request” via third‑party dependency injection. Affected data includes source code, build artifacts, and potentially runtime secrets.
Source: Dark Reading